scanning

I want secret leakage blocked before it reaches a remote repository. Local pre-commit hooks are not enough by themselves, but they cut down accidental exposure and teach the team what not to commit. The server-side or CI scan then becomes the final ga